$ rpki-client -vvf rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft File: vIYHvM59W9TtuRjN4bc0W4HmrR0.mft (raw, json) Hash identifier: +/fGcdGxWLjq6QLGDLBeubJz0MIGUKFvTEP0sgnJK7A= Subject key identifier: 88:F4:99:59:DD:AA:44:81:16:9D:A3:F8:5B:16:64:FA:95:2D:CE:57 Authority key identifier: BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D Certificate issuer: /CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Certificate serial: 0C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft Manifest number: 0BFD Signing time: Fri 22 Nov 2024 18:18:05 +0000 Manifest this update: Fri 22 Nov 2024 18:18:04 +0000 Manifest next update: Fri 29 Nov 2024 18:18:04 +0000 Files and hashes: 1: vIYHvM59W9TtuRjN4bc0W4HmrR0.crl (hash: 1nkd/3nMyBP+t8cujAVcjdiasPMHdmNLD/lKD02gSB0=) 2: 87B023F2FF9E11E998D7BF77C4F9AE02.roa (hash: KBPr0IvTbp4qH1T5XkMfOBWY0xCJEQF1q6Fm1wPX+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Validity Not Before: Nov 22 18:18:04 2024 GMT Not After : Nov 29 18:18:04 2024 GMT Subject: CN=6740cadc-8346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:31:3d:c3:22:7a:bc:4e:ed:54:9f:88:cc:49: a6:bc:14:6f:28:c7:63:db:0d:85:b1:02:3c:20:2c: f7:c5:d2:aa:c0:a9:94:bf:c6:04:ef:21:22:ec:21: 37:94:e7:1b:e1:10:c0:d7:33:79:ca:98:35:c8:ac: 28:e5:6d:a9:85:7c:b2:ce:5d:09:93:9d:3e:0e:99: b0:81:5d:f0:36:62:77:96:7d:86:63:32:18:fd:0b: cf:ac:9c:2e:6d:29:6a:4a:b6:ec:4e:f2:86:0d:7b: 7c:ec:36:1f:6d:14:e2:07:a4:ae:98:22:2b:a0:c7: 95:ff:23:35:f7:ba:cc:3c:73:d4:f3:f4:e7:4f:7e: 22:49:90:23:8d:15:99:af:79:18:3f:9b:8f:9b:77: db:ce:73:85:6c:32:9d:33:c9:34:4d:cd:9a:25:bd: 4b:4b:2d:f7:b8:4c:37:f1:38:46:3a:6b:c9:0e:94: 32:cb:84:68:fb:8f:b8:0e:b1:f3:8e:30:41:32:6d: ad:66:1b:66:bc:3c:37:d4:f0:d3:a8:51:57:17:36: c4:ba:8f:d5:9d:6e:1e:7d:79:90:03:31:7c:11:bb: 57:02:3a:40:13:8a:71:13:d9:94:11:ed:ff:88:ab: 2c:d7:36:e4:d0:97:89:1b:e6:a2:80:ab:38:f5:46: cb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F4:99:59:DD:AA:44:81:16:9D:A3:F8:5B:16:64:FA:95:2D:CE:57 X509v3 Authority Key Identifier: keyid:BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:65:d5:76:c8:2e:fe:a8:83:4a:6e:d0:ad:1b:4d:5a:b1:e8: 87:be:14:50:7d:aa:ad:62:34:52:c5:ed:a4:48:ee:0c:a7:95: ea:30:ff:10:d6:3b:d9:41:83:5f:65:59:f5:d5:6b:1f:a3:b9: f7:8d:a8:31:58:1c:19:ae:62:40:1d:53:18:25:bc:39:26:01: 78:ab:ec:5e:8f:b0:41:ec:48:91:c6:b8:d3:95:e5:b9:70:4a: cf:91:79:25:d8:68:26:92:8a:17:00:30:96:1d:cf:36:d4:a1: 5c:7d:ee:3c:3e:3a:da:32:12:b8:e9:75:88:20:aa:01:17:fc: c0:62:9b:1f:e2:db:12:d1:d7:eb:32:58:1c:cd:17:e5:63:61: 92:07:3e:09:74:1a:f7:c2:25:17:67:9d:50:66:29:96:ce:bf: 5f:73:38:94:f8:15:c4:ec:5a:fc:83:07:d3:12:57:b3:1b:05: 34:5a:58:6b:c6:3e:c8:94:a0:a9:de:c0:df:98:3c:e5:bf:33: a2:e3:8f:14:fe:fc:8c:3e:0f:de:a7:d7:15:dd:78:f4:e2:85: ba:f0:d0:22:ac:d4:4c:0e:63:33:68:f6:c7:06:ba:4e:73:5b: c7:c6:22:61:cc:fa:78:5e:9e:4b:95:7b:56:ca:2e:f6:2b:71: e6:6c:05:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0ODkxMTAvBgNVBAUTKEJDODYwN0JDQ0U3RDVCRDRFREI5MThDREUxQjczNDVC ODFFNkFEMUQwHhcNMjQxMTIyMTgxODA0WhcNMjQxMTI5MTgxODA0WjAYMRYwFAYD VQQDEw02NzQwY2FkYy04MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TE9wyJ6vE7tVJ+IzEmmvBRvKMdj2w2FsQI8ICz3xdKqwKmUv8YE7yEi7CE3 lOcb4RDA1zN5ypg1yKwo5W2phXyyzl0Jk50+DpmwgV3wNmJ3ln2GYzIY/QvPrJwu bSlqSrbsTvKGDXt87DYfbRTiB6SumCIroMeV/yM197rMPHPU8/TnT34iSZAjjRWZ r3kYP5uPm3fbznOFbDKdM8k0Tc2aJb1LSy33uEw38ThGOmvJDpQyy4Ro+4+4DrHz jjBBMm2tZhtmvDw31PDTqFFXFzbEuo/VnW4efXmQAzF8EbtXAjpAE4pxE9mUEe3/ iKss1zbk0JeJG+aigKs49UbL2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj0mVnd qkSBFp2j+FsWZPqVLc5XMB8GA1UdIwQYMBaAFLyGB7zOfVvU7bkYzeG3NFuB5q0d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjQ4OS8wQjM4NzlDQUZG OUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5VHR1UmpONGJjMFc0SG1y UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWUh2TTU5VzlUdHVSak40YmMwVzRIbXJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjQ4OS8wQjM4NzlDQUZGOUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5 VHR1UmpONGJjMFc0SG1yUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzZdV2yC7+qINKbtCtG01aseiHvhRQfaqtYjRSxe2kSO4Mp5XqMP8Q 1jvZQYNfZVn11Wsfo7n3jagxWBwZrmJAHVMYJbw5JgF4q+xej7BB7EiRxrjTleW5 cErPkXkl2GgmkooXADCWHc821KFcfe48PjraMhK46XWIIKoBF/zAYpsf4tsS0dfr MlgczRflY2GSBz4JdBr3wiUXZ51QZimWzr9fcziU+BXE7Fr8gwfTElezGwU0Wlhr xj7IlKCp3sDfmDzlvzOi448U/vyMPg/ep9cV3Xj04oW68NAirNRMDmMzaPbHBrpO c1vHxiJhzPp4Xp5LlXtWyi72K3HmbAXd -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org